Re: [Users] I don't know how to add AD users

------=_Part_33148007_2049661839.1353320129416 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit + LdapEncryptionType clear is not understandable. What did you mean by that? ----- Original Message ----- > > _______________________________________________ > > > Users mailing list Users(a)ovirt.org > > http://lists.ovirt.org/mailman/listinfo/users > > -- ------=_Part_33148007_2049661839.1353320129416 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 7bit <html><head><style type='text/css'>p { margin: 0; }</style></head><body><div style='font-family: times new roman,new york,times,serif; font-size: 12pt; color: #000000'>+ LdapEncryptionType clear is not understandable.<br>What did you mean by that?<br><br><br><hr id="zwchr"><blockquote style="border-left:2px solid rgb(16, 16, 255);margin-left:5px;padding-left:5px;color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>From: </b>"Vinzenz Feenstra" &amp;lt;vfeenstr(a)redhat.com&amp;gt;&lt;br&gt;&lt;b&gt;To: </b&gt;users(a)ovirt.org&lt;br&gt;&lt;b&gt;Sent: </b>Monday, November 19, 2012 11:29:42 AM<br><b>Subject: </b>Re: [Users] I don't know how to add AD users<br><br> <div class="moz-cite-prefix">On 11/19/2012 10:01 AM, Cristian Falcas wrote:<br> </div> <blockquote cite="mid:CAMo7R_cgPTu7Qv5uuDHLeHqA8JO2xcRrGeT0g7VXk6DFz3riww@mail.gmail.com">Hi,<br> <br> I'm trying to add some users to ovirt using an AD.<br> <br> This is the configuration I used for a mediawiki site, which is working correctly:<br> $wgAuth = new LdapAuthenticationPlugin();<br> $wgLDAPUseLocal = true;<br> $wgLDAPDomainNames = array( "a_domain");<br> $wgLDAPServerNames = array( "a_domain"=&gt;"<a href="http://site.example.com" target="_blank">site.example.com</a>");<br> $wgLDAPEncryptionType = array( "a_domain"=&gt;"clear");<br> $wgLDAPSearchStrings = array( "a_domain"=&gt;"rom_domain\\USER-NAME");<br> $wgLDAPBaseDNs = array( "a_domain"=&gt;"dc=company,dc=com");<br> <br> Those are the commands I tried using:<br> engine-manage-domains -action=add -domain=<a href="http://site.example.com" target="_blank">site.example.com</a> -provider=ActiveDirectory -user=<a href="http://user.name" target="_blank">user.name</a> -interactive<br> <br> engine-manage-domains -action=add -domain=a_domain -provider=ActiveDirectory -user=<a href="mailto:user.name@company.com" target=&quot;_blank&quot;&gt;user.name(a)company.com&lt;/a&gt; -interactive<br> <br> engine-manage-domains -action=add -domain=a_domain -provider=ActiveDirectory -user=<a href="mailto:user.name@site.example.com" target=&quot;_blank&quot;&gt;user.name(a)site.example.com&lt;/a&gt; -interactive<br> <br> <br> </blockquote> You don't add an user this way. You add the domain. You have to pass the domain admin user and the domain admin password.<br> Then you can use the domain within the engine. e.g. search users, add access rights for vms etc.<br> Even login to the engine and assigning rights within the engine you can handle from the engine itself.<br> <br> Regards,<br> <blockquote cite="mid:CAMo7R_cgPTu7Qv5uuDHLeHqA8JO2xcRrGeT0g7VXk6DFz3riww@mail.gmail.com">And the output on all tries:<br> Enter password:<br> <br> Error: Authentication Failed. Please verify the fully qualified domain name that is used for authentication is correct.. Problematic domain is: domain_used_in_command<br> Failure while applying Kerberos configuration. Details: Authentication Failed. Please verify the fully qualified domain name that is used for authentication is correct.<br> <br> Can someone help me with the correct parameters?<br> <br> <br> Best regards,<br> Cristian Falcas<br> <br> <fieldset class="mimeAttachmentHeader"></fieldset> <br> <pre>_______________________________________________ Users mailing list <a class="moz-txt-link-abbreviated" href="mailto:Users@ovirt.org" target=&quot;_blank&quot;&gt;Users(a)ovirt.org&lt;/a&gt; <a class="moz-txt-link-freetext" href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/user... </pre> </blockquote> <br> <br> <pre class="moz-signature">-- Regards, Vinzenz Feenstra | Senior Software Engineer RedHat Engineering Virtualization R &amp; D Phone: +420 532 294 625 IRC: vfeenstr or evilissimo Better technology. Faster innovation. Powered by community collaboration. See how it works at redhat.com</pre> <br>_______________________________________________<br>Users mailing list<br>Users@ovirt.org<br>http://lists.ovirt.org/mailman/listinfo/users<br></blockquote><br></div></body></html> ------=_Part_33148007_2049661839.1353320129416--